server/tls/peer

   1 #!/bin/sh
   2 PORT=1443
   3
   4 function usage() {
   5     echo "Bad invocation"
   6     cat <<EOM
   7 Usage: peer {gnutls|openssl} {server|client}
   8 EOM
   9     exit 1
  10 }
  11
  12 function gnutls_impl() {
  13     CA_ARGS="--x509cafile ca.cert"
  14     case "$1" in
  15         server)
  16             gnutls-serv --http $CA_ARGS --x509keyfile server.key \
  17                 --x509certfile server.cert -p "$PORT" -r
  18             ;;
  19         client)
  20             gnutls-cli $CA_ARGS --x509keyfile client.key \
  21                 --x509certfile client.cert -p "$PORT" localhost
  22             ;;
  23         *)
  24             usage
  25     esac
  26 }
  27
  28 function openssl_impl() {
  29     CA_ARGS="-CAfile ca.cert"
  30     case "$1" in
  31
  32     server)
  33         openssl s_server -www $CA_ARGS -key server.key \
  34             -cert server.cert -accept "$PORT" -Verify client.cert
  35         ;;
  36     client)
  37         openssl s_client $CA_ARGS -key client.key \
  38             -cert client.cert -connect "localhost:${PORT}"
  39         ;;
  40     *)
  41         usage
  42     esac
  43 }
  44
  45 case "$1" in
  46     gnutls)
  47         gnutls_impl "$2"
  48         ;;
  49     openssl)
  50         openssl_impl "$2"
  51         ;;
  52     *)
  53         usage
  54 esac